- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - OpenVMS
- >
- how to find the users who have high privilege
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 06:48 PM
тАО09-15-2005 06:48 PM
some are in same UIC group and some are different.
i want to display all users who only have OPER privilege. how to handle with?
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 07:07 PM
тАО09-15-2005 07:07 PM
Re: how to find the users who have high privilege
I dont know any elegant solution. The fastest is to do:
$ run authorize
UAF> list/full
UAF> exit
$ edit sysuaf.lis
and use editor to find OPER.
The second is:
UAF> show * /page/search=OPER
And scroll the whole listing. Lines with OPER string are highlited .
The first solution is faster and more practical to use.
Bojan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 07:09 PM
тАО09-15-2005 07:09 PM
Re: how to find the users who have high privilege
AUTHORIZE> list/full
$ search SYSUAF.LIS "username:","oper"
It will find all usernames and below each username you will see if there is any string "OPER". I admit that is rather primitive, but sometimes it is not possible to find a tool or install it on a system and I beleive that's better than going over the full list.
For UIC groups you can try this:
AUTHORIZE> show /brief [123,*]
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 07:11 PM
тАО09-15-2005 07:11 PM
Re: how to find the users who have high privilege
I should have used a larger cup of coffee this morning...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 07:23 PM
тАО09-15-2005 07:23 PM
Re: how to find the users who have high privilege
SAP01_Rohwedder. scanuaf
SCANUAF> priv=oper
===========
Node: LOCAL
===========
Username: xxxxxxxx
Username: xxxxxxxx
Username: DIA$MANAGER
Username: ROHWEDDER
Username: SYSTEM
Username: VET$SERVER
--------------------------------
Records: 132 Matches: 6
--------------------------------
You should find SCANUAF on Hunter Goatley's
fileserv.
regards Kalle
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 07:26 PM
тАО09-15-2005 07:26 PM
Re: how to find the users who have high privilege
authorize show */brief
and look in the privs column.
You see there normal,devour,system,all .
OPER in the priv list raises to SYSTEM.
For a single user, there is the freeware utility GETUAI (I think in the process.com archive), which lets you get the privilege list like
GETUAI user /priv=privsym/defpriv=defsym
into DCL symbols.
To get a list of all users, create a userlist using AUTHORIZE/LIST/BRIEF * , and loop over the list with GETUAI.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 07:29 PM
тАО09-15-2005 07:29 PM
Re: how to find the users who have high privilege
could you give me the address for "Hunter Goatley's file server"?
or could you send this tool to me ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 07:40 PM
тАО09-15-2005 07:40 PM
Solutionhttp://vms.process.com/scripts/fileserv/fileserv.com?SCANUAF
Since the original version is quite, I have added some new flags. I attach my version to this replay. It is written in FORTRAN.
regards Kalle
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 07:52 PM
тАО09-15-2005 07:52 PM
Re: how to find the users who have high privilege
but i donot know how to use it~
i'm a new system manager, even donot know how to install a software on VMS :p
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2005 08:13 PM
тАО09-15-2005 08:13 PM
Re: how to find the users who have high privilege
I just noticed, that the version is rather old (2000) and misses some of the new flags, so I just added them (PDMIX,VMSAUTH e.g.) and created a new version (see attached).
There is a userguide and releasenotes avaiable, as well as a HELP module for a helplibrary.
You must create a nodelist (template in kit), which tells SCANUAF where to find the SYSUAF files for different nodes (yes: scanuaf works network wide).
Besides addition to new flags, I moved the nodeslist and helpfile to a specific directory (CNC_MANAGER), but you can either define a logical name or change the source accordingly.
regards Kalle